栏目导航: 首页 > 检测提权 > 工具使用 > 内容

Net-Creds:快速嗅探数据包及接口中的敏感信息

www.hx99.net    时间: 2016-12-10    阅读: 次     整理: 华西安全网

 http://www.mottoin.com/91154.html

项目主页

https://github.com/DanMcInerney/net-creds

简介

Net-Creds是一款快速从数据包或者接口中嗅探密码以及Hash的工具

截图

687474703a2f2f696d6775722e636f6d2f6f70516f3742622e706e67

687474703a2f2f696d6775722e636f6d2f4b6c3549364a752e706e67

Sniffs

  • URLs visited
  • POST loads sent
  • HTTP form logins/passwords
  • HTTP basic auth logins/passwords
  • HTTP searches
  • FTP logins/passwords
  • IRC logins/passwords
  • POP logins/passwords
  • IMAP logins/passwords
  • Telnet logins/passwords
  • SMTP logins/passwords
  • SNMP community string
  • NTLMv1/v2 all supported protocols like HTTP, SMB, LDAP, etc
  • Kerberos

示例

自动检测接口用于嗅探

sudo python net-creds.py

选择eth0接口

sudo python net-creds.py -i eth0

忽略来自192.168.0.2的数据包

sudo python net-creds.py -f 192.168.0.2

读取pcap

python net-creds.py -p pcapfile

OSX

Credit to epocs:

sudo easy_install pip sudo pip install scapy sudo pip install pcapy brew install libdnet --with-python mkdir -p /Users/<username>/Library/Python/2.7/lib/python/site-packages echo 'import site; site.addsitedir("/usr/local/lib/python2.7/site-packages")' >> /Users/<username>/Library/Python/2.7/lib/python/site-packages/homebrew.pth sudo pip install pypcap brew tap brona/iproute2mac brew install iproute2mac

然后替换 line 74 ‘/sbin/ip’ 和 ‘/usr/local/bin/ip’.

本文来源:华西安全网[http://www.hx99.net]
发表评论】【告诉QQ好友】【错误报告】【加入收藏】【关闭